Description

In the Linux kernel, the following vulnerability has been resolved: KEYS: trusted: Fix memory leak in tpm2_key_encode() 'scratch' is never freed. Fix this by calling kfree() in the success, and in the error case.

INFO

Published Date :

2024-06-08T12:52:59.895Z

Last Modified :

2025-05-04T09:13:00.837Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-36967 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-36967.

URL Resource
https://git.kernel.org/stable/c/189c768932d435045b1fae12bf63e53866f06a28 cve-icon cve-icon
https://git.kernel.org/stable/c/1e6914fa8e7798bcf3ce4a5b96ea4ac1d5571cdf cve-icon cve-icon
https://git.kernel.org/stable/c/5d91238b590bd883c86ba7707c5c9096469c08b7 cve-icon cve-icon
https://git.kernel.org/stable/c/cf26a92f560eed5d6ddc3d441cc645950cbabc56 cve-icon cve-icon
https://git.kernel.org/stable/c/e62835264d0352be6086975f18fdfed2b5520b13 cve-icon cve-icon
https://git.kernel.org/stable/c/ffcaa2172cc1a85ddb8b783de96d38ca8855e248 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024060804-CVE-2024-36967-b73d@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-36967 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-36967 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact